Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

Active/Active HA Setup

Gerald24
Altostratus
Altostratus

‎20-Jul-2022 00:56

I have a question regarding HA Setup with Active/Active Setup.

I want to perform sync in both devices without affecting the configured routes of Both F5. Do you have an idea how could I do it? I'm trying to configure it in an F5 VE AWS environment. 

Labels:
0 Kudos
1 REPLY 1

StephanManthey
MVP
MVP

‎20-Jul-2022 02:39

There is a way to put configuration objects (i.e. virtuals, pools,profiles) and file objects (i.e. certs/keys) into folders.

You would run your BIG-IPs not in a sync-failover device group, but in a sync-only device group.

To create the folder you might follow this example:

tmsh create sys folder allsites_synconly \
device-group devgroup_sync-only_all-sites \
traffic-group none
tmsh save sys config partitions all

Objects like certificates may be imported/assigned to a folder like this:

tmsh create sys file ssl-key allsites_synconly/cert_service.bit \
source-path file:/shared/service.bit/service.bit.key
tmsh create sys file ssl-cert allsites_synconly/cert_service.bit \ source-path file:/shared/service.bit/service.bit.crt

If you prefer using the TMUI, don´t forget to put the folder always in front of your objekt name, i.e.:

StephanManthey_0-1658309462655.png

 

 

0 Kudos
Copyright © 2023 Khoros, LLC